Duration: 30.04.2024 - 30.04.2025
Location: Oslo, Stavanger and Bergen
No commuters accepted
Description about project/department:
The privacy team is organised under PSR Compliance, Improvement and Analysis (CIA) and consists of several teams focusing on specific compliance activities. The team has a global reach and is working with the PSR organisation as well as the PDP organisation (for defined tasks). We are looking for motivated colleagues to join this team working on a key compliance matter. The right to privacy is a fundamental human right and the General Data Protection Regulations aims to coordinate the European legal framework in terms of personal data protection across all EEA Member States. Client is subject to this regulation and need to ensure compliance when processing personal data and when vendors do so on client’s behalf. Compliance risk owners for procurement activities are procurement task leaders when new agreements are established, and business lines are compliance risk owners throughout the lifetime of contracts they use. Collaboration between procurement and business line, together with GDPR expertise is, however, necessary to succeed in all phases. PDP PSR CIA Privacy team main purpose is to provide support and expert advice to compliance risk owners, mainly in PSR, in collaboration with LEG PS and TDI it security.
Description about task and responsibilities:
- Support PSR and relevant business lines with necessary know how and performance of necessary task on client's responsibility as Controller of personal data when vendors are Processor of personal data on behalf of client
- Have close dialog with LEGAL and TDI it security expertise, leading advisors in SCM, and Data Protection Officer in client ASA to facilitate lean work processes and updates of templates, management system, and awareness in PSR and relevant business lines
- Assist in facilitating awareness campaign for contract teams, operational procurements, and relevant business lines in collaboration with LEG · Support PSR and business representatives with completion of relevant compliance task, such as drafting transfer impact assessments and data processing agreements.
- Support PSR and business line with GDPR issues being compliance with contracts hereunder suppliers process personal data on client's behalf
- Collaborate with EMA to facilitate necessary GDPR compliance task in design and follow-up of GDPR in procurements.
- Produce and promote awareness material in collaboration with LEG, such as knowledge article, templates, illustration of relevant compliance processes.
Competence Requirements:
Education: Preferably Master of law
Experience: Experience with supply chain management in client to be able to support all categories with ensuring compliance with privacy law, EU’s General Data Protection Requirements (GDPR) during execution of procurement activities and establishment of contracts.
Expectations to how you deliver: Comply with and promotes deliveries from organisation consistent with client's values
Fluent in English.
Good communicator, and able to combine legal requirements with a practical day-to-day work for procurement personnel and requisitioners and contract owners.
Personal qualities:
- Dedicated and engaged
- Ability to handle multiple cases at the same time – service minded attitude
- Attention to detail
- Personal integrity
- Self-driven team player
- Cooperative attitude and ability to work in multidisciplinary teams within a global environment
- Curious, with interest in continuously developing sound expertise within the privacy group
- You deliver and act by the clients values together with I am Safety expectations